I would use this. Because if you just set it to TRUE then if there is a bug in the Login Screen that allows the user to go to the next screen the database will not allow data retrieval or update.
The way I do is to start with just True for both read and write to ease the work. When the first demo is ready I switch to validating user IDs to prevent accidental data changes from unauthenticated users.
With this option, the application will only change data that is located under the User ID key in the database. Preventing accidental change to other users’ data.